TROYANOSYVIRUS
Back to CVEs

CVE-2003-0255

N/A

Description

The key validation code in GnuPG before 1.2.2 does not properly determine the validity of keys with multiple user IDs and assigns the greatest validity of the most valid user ID, which prevents GnuPG from warning the encrypting user when a user ID does not have a trusted path.

CVE Details

CVSS v3.1 ScoreN/A
Published5/27/2003
Last Modified4/16/2026
Sourcenvd
Honeypot Sightings0

Affected Products

gnu:privacy_guard

References

http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000694(cve@mitre.org)
http://marc.info/?l=bugtraq&m=105215110111174&w=2(cve@mitre.org)
http://marc.info/?l=bugtraq&m=105301357425157&w=2(cve@mitre.org)
http://marc.info/?l=bugtraq&m=105311804129104&w=2(cve@mitre.org)
http://marc.info/?l=bugtraq&m=105362224514081&w=2(cve@mitre.org)
http://www.kb.cert.org/vuls/id/397604(cve@mitre.org)
http://www.linuxsecurity.com/advisories/engarde_advisory-3258.html(cve@mitre.org)
http://www.linuxsecurity.com/advisories/gentoo_advisory-3266.html(cve@mitre.org)
http://www.mandriva.com/security/advisories?name=MDKSA-2003:061(cve@mitre.org)
http://www.osvdb.org/4947(cve@mitre.org)
http://www.redhat.com/support/errata/RHSA-2003-175.html(cve@mitre.org)
http://www.redhat.com/support/errata/RHSA-2003-176.html(cve@mitre.org)
http://www.securityfocus.com/bid/7497(cve@mitre.org)
http://www.turbolinux.com/security/TLSA-2003-34.txt(cve@mitre.org)
https://exchange.xforce.ibmcloud.com/vulnerabilities/11930(cve@mitre.org)
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A135(cve@mitre.org)
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000694(af854a3a-2127-422b-91ae-364da2661108)
http://marc.info/?l=bugtraq&m=105215110111174&w=2(af854a3a-2127-422b-91ae-364da2661108)
http://marc.info/?l=bugtraq&m=105301357425157&w=2(af854a3a-2127-422b-91ae-364da2661108)
http://marc.info/?l=bugtraq&m=105311804129104&w=2(af854a3a-2127-422b-91ae-364da2661108)
http://marc.info/?l=bugtraq&m=105362224514081&w=2(af854a3a-2127-422b-91ae-364da2661108)
http://www.kb.cert.org/vuls/id/397604(af854a3a-2127-422b-91ae-364da2661108)
http://www.linuxsecurity.com/advisories/engarde_advisory-3258.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.linuxsecurity.com/advisories/gentoo_advisory-3266.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.mandriva.com/security/advisories?name=MDKSA-2003:061(af854a3a-2127-422b-91ae-364da2661108)
http://www.osvdb.org/4947(af854a3a-2127-422b-91ae-364da2661108)
http://www.redhat.com/support/errata/RHSA-2003-175.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.redhat.com/support/errata/RHSA-2003-176.html(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/7497(af854a3a-2127-422b-91ae-364da2661108)
http://www.turbolinux.com/security/TLSA-2003-34.txt(af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/11930(af854a3a-2127-422b-91ae-364da2661108)
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A135(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.